Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/ZRT9WRw6epo59EF0klEBi7WZ8fs.roa
File: ZRT9WRw6epo59EF0klEBi7WZ8fs.roa (raw, json)
Hash identifier: aMGGvxB8KXdKG3Mo0qCGGWohyyEL8yfonAOqPengxwQ=
Subject key identifier: 65:14:FD:59:1C:3A:7A:9A:39:F4:41:74:92:51:01:8B:B5:99:F1:FB
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4185
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ZRT9WRw6epo59EF0klEBi7WZ8fs.roa
Signing time: Mon 15 Apr 2024 22:52:55 +0000
ROA not before: Mon 15 Apr 2024 22:52:55 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16773 (0x4185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 15 22:52:55 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6514FD591C3A7A9A39F441749251018BB599F1FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ee:12:dc:5d:f3:b3:e5:a9:b3:20:86:28:59:
86:6f:57:87:80:1b:3c:f0:94:0d:50:a5:2c:15:b0:
f1:a1:c5:de:df:37:3a:47:19:69:24:a1:b9:19:3c:
0d:85:a2:7e:0c:70:de:a0:60:58:c9:3b:7e:19:1d:
ac:9c:4b:a6:ed:7e:de:44:ae:17:99:d7:e1:fe:04:
21:2d:65:32:af:31:97:61:8f:52:6e:6e:60:f7:9f:
90:77:1c:23:5f:ad:7f:1e:76:47:1c:13:e9:e8:6f:
ad:3b:95:a5:7d:55:fe:39:5a:b8:fb:30:b5:2c:1f:
3d:d3:c9:34:fb:2e:fb:8c:bf:4d:94:cb:1d:a0:bc:
c1:34:5d:5d:7c:53:9e:e9:5b:66:4d:72:3e:35:45:
b0:fe:72:e1:b3:fe:57:10:16:79:f8:42:65:6a:dd:
4c:14:52:74:47:c1:34:3f:9e:c0:31:df:00:45:93:
05:f6:ce:4a:a6:2c:0b:d2:83:cb:f5:98:50:b5:ee:
5f:16:3c:39:cf:09:53:b5:8b:ae:70:8b:b6:e6:69:
91:04:d4:c8:61:43:05:e1:73:9c:e9:aa:96:2f:cc:
af:f5:c1:72:9f:5e:9b:76:27:d1:1e:0b:97:7d:a4:
bf:5f:60:e1:75:ad:1d:34:7d:c2:53:43:13:71:86:
d8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:14:FD:59:1C:3A:7A:9A:39:F4:41:74:92:51:01:8B:B5:99:F1:FB
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ZRT9WRw6epo59EF0klEBi7WZ8fs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
68:5a:7e:2c:65:41:72:2f:60:e5:20:82:73:dc:57:eb:34:e1:
cc:67:b6:49:5c:ba:79:73:eb:fc:80:aa:07:52:4f:f1:6e:71:
31:e2:4b:e9:35:c1:6d:f0:91:a9:97:63:4e:27:84:de:43:47:
66:19:87:f0:12:89:f8:73:d0:1c:fa:06:76:93:90:d3:e1:ea:
f5:0b:00:a2:03:7f:02:a4:0d:6f:89:fa:9f:4d:14:2f:cd:d7:
48:44:44:ed:bd:21:61:49:72:8e:fb:e9:85:18:7c:12:6c:ac:
cc:ab:f2:fe:cd:9a:fe:2f:5b:b2:77:fc:50:c8:18:49:43:a6:
ec:39:74:6a:1e:db:7d:92:bb:a8:1a:a1:2b:09:7f:a8:9d:9e:
25:c0:ea:08:ba:1a:2c:35:31:2b:69:ae:5f:a3:78:b1:82:9c:
52:5f:93:81:a6:79:6e:48:6c:04:95:ae:10:1a:f9:c8:bb:a7:
4e:53:ad:31:30:a0:49:15:88:93:08:69:fc:47:42:c2:4f:f1:
3f:d7:bc:99:f1:05:07:53:aa:7c:d0:fa:92:2c:e6:ca:ca:64:
14:da:a0:5f:1d:98:45:3b:36:aa:cb:db:dc:71:71:ab:6f:1d:
cd:a3:4f:7f:69:05:7e:72:61:31:7a:e0:c2:e9:64:a6:57:5e:
d0:f5:79:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:51 2024 by rpki-client on console-ams.rpki-client.org